BugTraq Mode:
(Page 6 of 1671)  < Prev  1 2 3 4 5 6 7 8 9 10 11  Next >
[SECURITY] [DSA 3539-1] srtp security update 2016-04-02
Salvatore Bonaccorso (carnil debian org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-3539-1 security (at) debian (dot) org [email concealed]
https://www.debian.org/security/ Salvatore Bonaccorso
April 02, 2016

[ more ]  [ reply ]
Open-Xchange Security Advisory 2016-04-02 2016-04-02
Martin Heiland (martin heiland lists open-xchange com)
Product: Open-Xchange Server 6 / OX AppSuite
Vendor: Open-Xchange GmbH

Internal reference: 44409 (Bug ID)
Vulnerability type: Cross Site Scripting (CWE-80)
Vulnerable version: 7.8.0 and earlier
Vulnerable component: backend
Report confidence: Confirmed
Solution status: Fixed by Vendor
Fixed version

[ more ]  [ reply ]
[security bulletin] HPSBGN03565 rev.1 - HPE Virtualization Performance Viewer, Local Denial of Service (DoS) 2016-04-02
security-alert hpe com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Note: the current version of the following document is available here:
https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=
emr_n
a-c05068676

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c05068676
Version: 1

HPSBGN03565 r

[ more ]  [ reply ]
[slackware-security] mercurial (SSA:2016-092-01) 2016-04-01
Slackware Security Team (security slackware com)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

[slackware-security] mercurial (SSA:2016-092-01)

New mercurial packages are available for Slackware 13.0, 13.1, 13.37, 14.0,
14.1, and -current to fix security issues.

Here are the details from the Slackware 14.1 ChangeLog:
+-----------------------

[ more ]  [ reply ]
[slackware-security] php (SSA:2016-092-02) 2016-04-01
Slackware Security Team (security slackware com)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

[slackware-security] php (SSA:2016-092-02)

New php packages are available for Slackware 14.0, 14.1, and -current to
fix security issues.

Here are the details from the Slackware 14.1 ChangeLog:
+--------------------------+
patches/packages/php-5.6.2

[ more ]  [ reply ]
[security bulletin] HPSBHF03431 rev.3 - HPE Network Switches, local Bypass of Security Restrictions, Indirect Vulnerabilities 2016-04-01
security-alert hpe com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Note: the current version of the following document is available here:
https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=
emr_n
a-c04920918

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c04920918
Version: 3

HPSBHF03431 r

[ more ]  [ reply ]
[security bulletin] HPSBUX03561 rev.1 - HPE HP-UX using Apache Tomcat, Remote Access Restriction Bypass, Arbitrary Code Execution, Execution of Arbitrary Code With Privilege Elevation, Unauthorized Read Access to Files 2016-04-01
security-alert hpe com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Note: the current version of the following document is available here:
https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=
emr_n
a-c05054964

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c05054964
Version: 1

HPSBUX03561 r

[ more ]  [ reply ]
[security bulletin] HPSBGN03567 rev.1 - HP Asset Manager using Java Deserialization, Remote Arbitrary Code Execution 2016-04-01
security-alert hpe com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Note: the current version of the following document is available here:
https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=
emr_n
a-c05064889

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c05064889
Version: 1

HPSBGN03567 r

[ more ]  [ reply ]
[security bulletin] HPSBGN3547 rev.1 - HP Device Manager, Remote Read Access to Arbitrary Files 2016-04-01
HP Security Alert (hp-security-alert hp com)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Note: the current version of the following document is available here:
https://h20565.www2.hp.com/hpsc/doc/public/display?docId=emr_na-c0505471
4

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c05054714
Version: 1

HPSBGN3547 rev.1 - HP Devic

[ more ]  [ reply ]
APPLE-SA-2016-03-31-1 iBooks Author 2.4.1 2016-03-31
Apple Product Security (product-security-noreply lists apple com)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

APPLE-SA-2016-03-31-1 iBooks Author 2.4.1

iBooks Author 2.4.1 is now available and addresses the following:

iBooks Author
Available for: OS X Yosemite v10.10 or later
Impact: Parsing a maliciously crafted iBooks Author file may lead to
disclosure

[ more ]  [ reply ]
WebKitGTK+ Security Advisory WSA-2016-0003 2016-03-31
Carlos Alberto Lopez Perez (clopez igalia com)
------------------------------------------------------------------------

WebKitGTK+ Security Advisory WSA-2016-0003
------------------------------------------------------------------------

Date reported : March 31, 2016
Advisory ID : WSA-2016-0003
Advisory

[ more ]  [ reply ]
Python v2.7 v1.5.4 iOS - Filter Bypass & Persistent Vulnerability 2016-03-31
Vulnerability Lab (research vulnerability-lab com)

Document Title:
===============
Python v2.7 v1.5.4 iOS - Filter Bypass & Persistent Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1806

Release Date:
=============
2016-03-31

Vulnerability Laboratory ID (VL-ID):
====================

[ more ]  [ reply ]
Trend Micro (SSO) - (Backend) SSO Redirect & Session Vulnerability 2016-03-31
Vulnerability Lab (research vulnerability-lab com)

Document Title:
===============
Trend Micro (SSO) - (Backend) SSO Redirect & Session Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1694

Trand Micro ID: 1-1-1035080936

Release Date:
=============
2016-03-31

Vulnerability Laboratory

[ more ]  [ reply ]
Docker UI v0.10.0 - Multiple Persistent Vulnerabilities 2016-03-31
Vulnerability Lab (research vulnerability-lab com)

Document Title:
===============
Docker UI v0.10.0 - Multiple Persistent Vulnerabilities

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1803

Release Date:
=============
2016-03-29

Vulnerability Laboratory ID (VL-ID):
==============================

[ more ]  [ reply ]
Dorsa Web CMS - Multiple SQL Injection Vulnerabilities 2016-03-31
Vulnerability Lab (research vulnerability-lab com)

Document Title:
===============
Dorsa Web CMS - Multiple SQL Injection Vulnerabilities

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1807

Release Date:
=============
2016-03-31

Vulnerability Laboratory ID (VL-ID):
===============================

[ more ]  [ reply ]
Docker UI v0.10.0 - Multiple Client Side Cross Site Request Forgery Web Vulnerabilities 2016-03-31
Vulnerability Lab (research vulnerability-lab com)
Document Title:
===============
Docker UI v0.10.0 - Multiple Client Side Cross Site Request Forgery Web
Vulnerabilities

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1802

Release Date:
=============
2016-03-28

Vulnerability Laboratory ID (VL-ID):

[ more ]  [ reply ]
WP External Links v1.80 - Cross Site Scripting Web Vulnerabilities 2016-03-31
Vulnerability Lab (research vulnerability-lab com)

Document Title:
===============
WP External Links v1.80 - Cross Site Scripting Web Vulnerabilities

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1788

Release Date:
=============
2016-03-23

Vulnerability Laboratory ID (VL-ID):
===================

[ more ]  [ reply ]
Hi Technology & Services CMS - SQL Injection Vulnerabilities 2016-03-31
Vulnerability Lab (research vulnerability-lab com)

Document Title:
===============
Hi Technology & Services CMS - SQL Injection Vulnerabilities

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1785

Release Date:
=============
2016-03-22

Vulnerability Laboratory ID (VL-ID):
=========================

[ more ]  [ reply ]
Patron Info System - SQL Injection Vulnerability 2016-03-31
Vulnerability Lab (research vulnerability-lab com)

Document Title:
===============
Patron Info System - SQL Injection Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1784

Release Date:
=============
2016-03-21

Vulnerability Laboratory ID (VL-ID):
====================================

[ more ]  [ reply ]
Cades (2016Q1) - (id) Multiple SQL Injection Vulnerabilities 2016-03-31
Vulnerability Lab (research vulnerability-lab com)

Document Title:
===============
Cades (2016Q1) - (id) Multiple SQL Injection Vulnerabilities

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1804

Release Date:
=============
2016-03-30

Vulnerability Laboratory ID (VL-ID):
=========================

[ more ]  [ reply ]
[SECURITY] [DSA 3538-1] libebml security update 2016-03-31
Sebastien Delafond (seb debian org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-3538-1 security (at) debian (dot) org [email concealed]
https://www.debian.org/security/ Sebastien Delafond
March 31, 2016

[ more ]  [ reply ]
[SECURITY] [DSA 3537-1] imlib2 security update 2016-03-31
Sebastien Delafond (seb debian org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-3537-1 security (at) debian (dot) org [email concealed]
https://www.debian.org/security/ Sebastien Delafond
March 31, 2016

[ more ]  [ reply ]
[SECURITY] [DSA 3536-1] libstruts1.2-java security update 2016-03-31
Sebastien Delafond (seb debian org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-3536-1 security (at) debian (dot) org [email concealed]
https://www.debian.org/security/ Sebastien Delafond
March 31, 2016

[ more ]  [ reply ]
Cisco Security Advisory: Cisco Firepower Malware Block Bypass Vulnerability 2016-03-30
Cisco Systems Product Security Incident Response Team (psirt cisco com) (1 replies)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Cisco Firepower Malware Block Bypass Vulnerability

Advisory ID: cisco-sa-20160330-fp

Revision 1.0

For Public Release 2016 March 30 16:00 UTC (GMT)

+---------------------------------------------------------------------

Summary
=======

A vulnerabili

[ more ]  [ reply ]
[CVE-2016-0784] Apache OpenMeetings ZIP file path traversal 2016-03-30
Maxim Solodovnik (solomax666 gmail com)
Severity: Moderate

Vendor: The Apache Software Foundation

Versions Affected: Apache OpenMeetings 1.9.x - 3.1.0

Description:
The Import/Export System Backups functionality in the OpenMeetings
Administration
menu (http://domain:5080/openmeetings/#admin/backup) is vulnerable to path
traversal via sp

[ more ]  [ reply ]
Multiple Vulnerabilities in CubeCart 2016-03-30
High-Tech Bridge Security Research (advisory htbridge ch)
Advisory ID: HTB23298
Product: CubeCart
Vendor: CubeCart Limited
Vulnerable Version(s): 6.0.10 and probably prior
Tested Version: 6.0.10
Advisory Publication: March 2, 2016 [without technical details]
Vendor Notification: March 2, 2016
Vendor Patch: March 16, 2016
Public Disclosure: March 30, 20

[ more ]  [ reply ]
CVE-2016-2385 Kamailio SEAS module heap buffer overflow 2016-03-30
Stelios Tsampas (stelios census-labs com)
Kamailio (successor of former OpenSER and SER) is an Open Source SIP
Server released under GPL. It can be used to build large platforms for
VoIP and realtime communications, presence, WebRTC, Instant messaging
and other applications.

A heap overflow was found in Kamailio version 4.3.4 (possibly aff

[ more ]  [ reply ]
Easy Hosting Control Panel (EHCP) - Multiple Vulnerabilities 2016-03-30
kyle Lovett (krlovett gmail com)
EHCP Easy Hosting Control Panel
Multiple Vulnerabilities -
Clear Text MySQL Root Password
Insufficiently Protected Sensitive Data
Authentication Bypass
Unauthenticated Arbitrary File Upload

Software Links:
https://launchpad.net/ehcp
http://www.ehcp.net
https://sourceforge.net/p/ehcp/wiki/
---------

[ more ]  [ reply ]
[SECURITY] [DSA 3535-1] kamailio security update 2016-03-29
Moritz Muehlenhoff (jmm debian org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-3535-1 security (at) debian (dot) org [email concealed]
https://www.debian.org/security/ Moritz Muehlenhoff
March 29, 2016

[ more ]  [ reply ]
(Page 6 of 1671)  < Prev  1 2 3 4 5 6 7 8 9 10 11  Next >


 

Privacy Statement
Copyright 2010, SecurityFocus